Re: New setreuid() and setresuid() logic


From: Amon Ott <ao@rsbac.org>
Subject: Re: New setreuid() and setresuid() logic
Date: Wed, 18 Apr 2001 15:56:34 +0200

Next Article (by Author): Re: Re[12]: RSBAC v1.1.1 problem Amon Ott
Previous Article (by Author): Re: acls and samba Amon Ott
Top of Thread: New setreuid() and setresuid() logic Stanislav Ievlev
Articles sorted by: [Date] [Author] [Subject]


On Mit, 18 Apr 2001 Stanislav Ievlev wrote:
> Stanislav Ievlev wrote:
> > I propose a new logic for RSBAC in sys_setreuid() and sys_setresuid() 
> > to  allow ruid=-1 and switching between real, effective and saved UIDs.
> OOppsss....
> Bug in patch. We need only real uid checking.

Sorry, I do not like the idea of depending on uncontrolled euid and suid
values. I'd need some good arguments for such a behaviour - and some new checks
for setting euid and suid.

Amon.
-
To unsubscribe from the rsbac list, send a mail to
majordomo@rsbac.org with
unsubscribe rsbac
as single line in the body.

Next Article (by Author): Re: Re[12]: RSBAC v1.1.1 problem Amon Ott
Previous Article (by Author): Re: acls and samba Amon Ott
Top of Thread: New setreuid() and setresuid() logic Stanislav Ievlev
Articles sorted by: [Date] [Author] [Subject]


Go to Compuniverse LWGate Home Page.